CVE-2026-7578

🗓️ 01 May 2026 10:45:10Reported by VulDBType

MacCMS Pro up to 2022.1.3 has a remote unrestricted upload flaw in the Plugin Installation Handler.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2026-7578	1 May 202610:45	–	attackerkb
CNNVD	maccms_pro 访问控制错误漏洞	1 May 202600:00	–	cnnvd
Cvelist	CVE-2026-7578 MacCMS Pro Plugin Installation add.html install unrestricted upload	1 May 202610:45	–	cvelist
EUVD	EUVD-2026-26495	1 May 202610:45	–	euvd
NVD	CVE-2026-7578	1 May 202611:16	–	nvd
Positive Technologies	PT-2026-36316	1 May 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-7578	5 Jun 202619:50	–	redhatcve
Vulnrichment	CVE-2026-7578 MacCMS Pro Plugin Installation add.html install unrestricted upload	1 May 202610:45	–	vulnrichment

Vulners

Node

maccms_proMatch2022.1.0

maccms_proMatch2022.1.1

maccms_proMatch2022.1.2

maccms_proMatch2022.1.3

[
  {
    "vendor": "n/a",
    "product": "MacCMS Pro",
    "versions": [
      {
        "version": "2022.1.0",
        "status": "affected"
      },
      {
        "version": "2022.1.1",
        "status": "affected"
      },
      {
        "version": "2022.1.2",
        "status": "affected"
      },
      {
        "version": "2022.1.3",
        "status": "affected"
      }
    ],
    "modules": [
      "Plugin Installation Handler"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/vuln/360419
github	www.github.com/qingyun985/Cyber-Security/issues/1
vuldb	www.vuldb.com/submit/792283
vuldb	www.vuldb.com/vuln/360419/cti

17 Jun 2026 11:02Current

5.4Medium risk

Vulners AI Score5.4

CVSS 3.14.7

CVSS 45.1

CVSS 25.8

CVSS 34.7

EPSS0.00231

SSVC